Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_mppi_controller.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HOpenrobotics Robot Operating System
APPOpenrobotics2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
Related vulnerabilities
CVE-2024-38924CRITICAL9.8PL ✓ten sam produkt
Use-after-free w ROS2 Nav2 humble — zdalny exploit przez nav2_amcl
CVE-2024-38922CRITICAL9.8PL ✓ten sam produkt
Heap overflow w procesie nav2_amcl systemu ROS2 Nav2
CVE-2024-38921CRITICAL9.8PL ✓ten sam produkt
Use-after-free w ROS2 Nav2 — zdalny atak przez parametr /amcl z_rand
CVE-2024-38923CRITICAL9.8PL ✓ten sam produkt
Use-after-free w ROS2 Nav2 humble poprzez proces nav2_amcl
CVE-2024-38925CRITICAL9.8PL ✓ten sam produkt
Use-after-free w ROS2 Nav2 — zdalny atak przez zmianę parametru AMCL